Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,398 advisories

Loading
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the... High Unreviewed
CVE-2024-45558 was published Jan 6, 2025
In the Linux kernel, the following vulnerability has been resolved: 9p/xen: fix release of IRQ ... High Unreviewed
CVE-2024-56704 was published Dec 28, 2024
In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: fix race between... High Unreviewed
CVE-2023-52517 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not attempt... High Unreviewed
CVE-2023-52501 was published Mar 3, 2024
The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to... High Unreviewed
CVE-2024-46481 was published Jan 13, 2025
An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with... High Unreviewed
CVE-2024-46480 was published Jan 13, 2025
Improper handling and storage of certificates in CP Plus CP-VNR-3104 B3223P22C02424 allow... High Unreviewed
CVE-2024-54848 was published Jan 10, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix oob check... High Unreviewed
CVE-2023-52525 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock... High Unreviewed
CVE-2023-52524 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc:... High Unreviewed
CVE-2023-52519 was published Mar 3, 2024
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested... High Unreviewed
CVE-2023-52507 was published Mar 3, 2024
An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause a persistent... High Unreviewed
CVE-2023-29745 was published May 31, 2023
An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause a persistent... High Unreviewed
CVE-2023-29743 was published May 31, 2023
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device. High Unreviewed
CVE-2023-33741 was published May 31, 2023
Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules... High Unreviewed
CVE-2023-30196 was published May 30, 2023
Incorrect access control in luowice v3.5.18 allows attackers to access cloud source code... High Unreviewed
CVE-2023-33740 was published May 31, 2023
Software installed and run as a non-privileged user may conduct improper GPU system calls... High Unreviewed
CVE-2024-47897 was published Jan 13, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix race condition... High Unreviewed
CVE-2023-52480 was published Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved: mctp: perform route lookups... High Unreviewed
CVE-2023-52483 was published Feb 29, 2024
Kernel software installed and running inside a Guest VM may post improper commands to the GPU... High Unreviewed
CVE-2024-47894 was published Jan 13, 2025
Kernel software installed and running inside a Guest VM may post improper commands to the GPU... High Unreviewed
CVE-2024-47895 was published Jan 13, 2025
In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO... High Unreviewed
CVE-2023-52482 was published Feb 29, 2024
MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection... High Unreviewed
CVE-2024-54996 was published Jan 10, 2025
Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. High Unreviewed
CVE-2025-22963 was published Jan 13, 2025
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS... High Unreviewed
CVE-2024-47796 was published Jan 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database